Last updated: 2025-04-03 08:16:10 +0200

unknown (113)

Major: 1 / Normal: 4 / Minor: 13 / Trivial: 9 / ??: 86
Average staleness: 506 / Average age: 697

Bug	Severity	Summary	Stale	Age
934736	Major	<app-editors/emacs-{26.3-r19,27.2-r17,28.2-r13,29.3-r3} <app-emacs/org-mode-9.7.5: org-mode command execution vulnerability CVE-2024-39331	126	285
786957	Normal	net-misc/wget: Authorisation header disclosure on redirect (CVE-2021-31879) CVE-2021-31879	1248	1435
869413	Normal	sys-apps/man2html: multiple vulnerabilities CVE-2021-40647 CVE-2021-40648	531	936
765361	Normal	<dev-lang/R-4.0.4: code execution via malicious CRAN package (CVE-2020-27637) CVE-2020-27637	453	1541
929208	Normal	<dev-python/idna-3.7: potential DoS via resource consumption via specially crafted inputs to idna.encode() CVE-2024-3651	113	356
761412	Minor	dev-libs/libtomcrypt: Out of bounds read (CVE-2019-17362) CVE-2019-17362	1344	1562
714024	Minor	sci-libs/hdf5: multiple vulnerabilities CVE-2020-10809 CVE-2020-10810 CVE-2020-10811 CVE-2020-10812 CVE-2021-45829 CVE-2021-45830 CVE-2021-45832 CVE-2021-45833 CVE-2021-46242 CVE-2021-46243 CVE-2021-46244 sci-libs/hdf5: heap buffer overread sci-libs/hdf5: Multiple vulnerabilities	1167	1838
661156	Minor	sci-libs/hdf: Multiple vulnerabilities CVE-2018-14031 CVE-2018-14032 CVE-2018-14033 CVE-2018-14034 CVE-2018-14035	966	2455
799785	Minor	dev-libs/keystone: multiple vulnerabilities (CVE-2020-{36404,36405}) CVE-2020-36404 CVE-2020-36405	959	1371
870040	Minor	www-apps/moodle: XSS via crafted topic fields CVE-2021-36568 www-apps/moodle: XSS in headers and footers	855	932

tracker (25)

Normal: 1 / ??: 24
Average staleness: 426 / Average age: 700

Bug	Severity	Summary	Stale	Age
915553	Normal	[Tracker] HTTP/2 Rapid Reset vulnerability CVE-2023-44487 Tracked bugs: 9 open / 14 total	496	541
824306	??	[Tracker] Vulnerability in gstreamer (CVE-2021-3522) CVE-2021-3522 Tracked bugs: 1 open / 2 total	1232	1232
821154	??	[Tracker] Unicode "bidirectional override" vulnerabilities CVE-2021-42574 CVE-2021-42694 Tracked bugs: 2 open / 4 total	977	1249
792267	??	[Tracker] Packages misusing libsoup API for TLS validation Tracked bugs: 5 open / 5 total	952	1408
803617	??	[Tracker] Vulnerabilities in MySQL (Oracle CPU July 2021) CVE-2021-2339 CVE-2021-2340 CVE-2021-2342 CVE-2021-2352 CVE-2021-2354 CVE-2021-2356 CVE-2021-2357 CVE-2021-2367 CVE-2021-2370 CVE-2021-2372 CVE-2021-2374 CVE-2021-2383 CVE-2021-2384 CVE-2021-2385 CVE-2021-2387 CVE-2021-2389 CVE-2021-2390 CVE-2021-2399 CVE-2021-2402 CVE-2021-2410 CVE-2021-2412 CVE-2021-2417 CVE-2021-2418 CVE-2021-2422 CVE-2021-2424 CVE-2021-2425 CVE-2021-2426 CVE-2021-2427 CVE-2021-2429 CVE-2021-2437 CVE-2021-2440 CVE-2021-2441 CVE-2021-2444 Tracked bugs: 1 open / 2 total	952	1349
807352	??	[Tracker] NO STARTTLS collection of vulnerabilities Tracked bugs: 2 open / 18 total	952	1332
811909	??	[Tracker] ElGamal Plaintext Recovery in dev-libs/botan CVE-2021-40529 Tracked bugs: 1 open / 2 total	952	1304
913247	??	[Tracker] Vulnerability in rar/unrar CVE-2023-40477 Tracked bugs: 1 open / 2 total	582	582
924455	??	[Tracker] "KeyTrap" DNS DoS vulnerability CVE-2023-50387 CVE-2023-50868 Tracked bugs: 5 open / 5 total	408	414
643228	??	[TRACKER] kernel: Meltdown and Spectre - A flaw in modern processors (CVE-2017-{5715,5753,5754}) Tracked bugs: 1 open / 7 total	396	2647

upstream (95)

Major: 4 / Normal: 26 / Minor: 47 / Trivial: 13 / ??: 5
Average staleness: 753 / Average age: 1208

Bug	Severity	Summary	Stale	Age
626822	Major	media-libs/libmad: Dos (memory corruption) via crafted MP3 files CVE-2017-11552	1435	2802
907924	Major	dev-python/reportlab: remote code execution CVE-2023-33733	667	667
866386	Major	app-arch/unzip: null pointer dereference CVE-2021-4217	543	953
901393	Major	app-admin/doas: vulnerable to privilege escalation via TIOCSTI/TIOCLINUX command injection CVE-2023-28339	86	750
721672	Normal	dev-python/pip: Possible code execution via untrusted packages from external indexes (CVE-2018-20225) CVE-2018-20225	1791	1791
617474	Normal	x11-libs/cairo: NULL pointer dereference with a crafted font file (CVE-2017-7475) CVE-2017-7475	1349	2891
810034	Normal	media-libs/plib: integer overflow leading to code execution (CVE-2021-38714) CVE-2021-38714	1318	1318
717714	Normal	sys-devel/flex: Stack exhaustion in mark_beginning_as_normal causing denial of service (CVE-2019-6293)	1264	1813
845039	Normal	dev-embedded/u-boot-tools: unbounded memcpy in nfs CVE-2022-30767	1053	1053
829835	Normal	sys-devel/patch: invalid free vulnerability CVE-2021-45261 sys-devel/patch: Double free allowing DoS in another_hunk (CVE-2019-20633)	960	1198

upstreamebuild (34)

Major: 1 / Normal: 11 / Minor: 15 / Trivial: 6 / ??: 1
Average staleness: 580 / Average age: 988

Bug	Severity	Summary	Stale	Age
942077	Major	dev-lang/python: Virtual environment (venv) activation scripts don't quote paths CVE-2024-9287	161	161
798480	Normal	app-text/djvu: multiple vulnerabilities (CVE-2021-{3500,32490,32491,32492,32493}) CVE-2021-32490 CVE-2021-32491 CVE-2021-32492 CVE-2021-32493 CVE-2021-3500	1189	1378
759544	Normal	www-misc/awstats: Arbitrary code execution (CVE-2020-35176) CVE-2020-35176	961	1573
821346	Normal	dev-db/redis: integer overflow via bundled hiredis	894	1248
877609	Normal	app-emulation/qemu: multiple vulnerabilities CVE-2022-3165 CVE-2022-3872	877	897
836920	Normal	sys-apps/busybox: multiple vulnerabilities CVE-2022-28391 CVE-2022-30065	601	1093
793953	Normal	net-dns/avahi: multiple DoS vulnerabilities CVE-2021-3468 CVE-2021-3502 CVE-2021-36217 CVE-2023-1981 CVE-2023-38469 CVE-2023-38470 CVE-2023-38471 CVE-2023-38472 CVE-2023-38473	515	1401
907256	Normal	media-video/gpac: multiple vulnerabilities CVE-2023-2837 CVE-2023-2838 CVE-2023-2839 CVE-2023-2840 CVE-2023-3012 CVE-2023-3013 CVE-2023-3291 CVE-2023-3523 CVE-2023-37174 CVE-2023-37765 CVE-2023-37766 CVE-2023-37767 CVE-2023-39562 CVE-2023-41000 CVE-2023-42298 CVE-2023-4678 CVE-2023-4681 CVE-2023-4682 CVE-2023-4683 CVE-2023-46927 CVE-2023-46928 CVE-2023-46930 CVE-2023-46931 CVE-2023-4720 CVE-2023-4721 CVE-2023-4722 CVE-2023-4754 CVE-2023-4755 CVE-2023-4756 CVE-2023-4758 CVE-2023-4778 CVE-2023-48014 CVE-2023-5377 CVE-2023-5520 CVE-2023-5586 CVE-2023-5595	503	677
918403	Normal	media-libs/tiff: crafted input results in out-of-memory CVE-2023-6277	496	496
897952	Normal	app-text/htmltidy: arbitrary code execution CVE-2021-33391	279	767

ebuild (62)

Critical: 5 / Major: 3 / Normal: 16 / Minor: 25 / Trivial: 11 / ??: 2
Average staleness: 422 / Average age: 638

Bug	Severity	Summary	Stale	Age
918679	Critical	dev-libs/stb: multiple vulnerabilities CVE-2023-43281 CVE-2023-43898 CVE-2023-45661 CVE-2023-45662 CVE-2023-45663 CVE-2023-45664 CVE-2023-45666 CVE-2023-45667 CVE-2023-45675 CVE-2023-45676 CVE-2023-45677 CVE-2023-45678 CVE-2023-45679 CVE-2023-45680 CVE-2023-45681 CVE-2023-45682	361	492
937483	Critical	net-wireless/wpa_supplicant: possible privilege escalation CVE-2024-5290	234	239
953021	Critical	www-client/firefox{-bin,}: multiple vulnerabilities CVE-2025-3035	2	2
953022	Critical	mail-client/thunderbird{-bin,}: multiple vulnerabilities	2	2
953023	Critical	dev-lang/spidermonkey: multiple vulnerabilities dev-lang/spidermonkey: multiple vulnerabilities dev-lang/spidermonkey: multiple vulnerabilities	2	2
943403	Major	<www-client/chromium-131.0.6778.69, <www-client/google-chrome-131.0.6778.69, <www-client/microsoft-edge-131.0.6778.69, www-client/opera: Multiple vulnerabilities CVE-2024-11110 CVE-2024-11111 CVE-2024-11112 CVE-2024-11113 CVE-2024-11114 CVE-2024-11115 CVE-2024-11116 CVE-2024-11117	24	140
942684	Major	sys-cluster/slurm: Incorrect Authorization CVE-2024-48936	11	153
951739	Major	net-libs/webkit-gtk: multiple vulnerabilities CVE-2024-44192 CVE-2024-54467 CVE-2025-24201	7	12
802513	Normal	net-analyzer/fail2ban: code exection via malicious whois responses (CVE-2021-32749) CVE-2021-32749	967	1357
821220	Normal	<sys-devel/gcc-12.1.0: Unicode "bidirectional override" (CVE-2021-42574)	963	1249

stable? (7)

Major: 1 / Normal: 1 / Minor: 4 / ??: 1
Average staleness: 21 / Average age: 199

Bug	Severity	Summary	Stale	Age
949336	Normal	<dev-db/mariadb-{10.6.21,10.11.11,11.4.5}: High Privilege Denial of Service Vulnerability CVE-2025-21490	56	57
949642	Minor	<dev-ruby/rack-{2.2.11:2.2,3.0.12:3.0,3.1.10:3.1}: Log Injection vulnerability CVE-2025-25184	50	50
821517	Minor	<dev-libs/libxls-1.6.3: null pointer dereferences CVE-2021-27836	11	1247
951285	??	<app-text/ghostscript-gpl-10.05.0: Multiple vulnerabilities CVE-2025-27830 CVE-2025-27831 CVE-2025-27832 CVE-2025-27833 CVE-2025-27834 CVE-2025-27835 CVE-2025-27836 CVE-2025-27837	21	21

stable (24)

Major: 6 / Normal: 7 / Minor: 10 / Trivial: 1
Average staleness: 114 / Average age: 349

Bug	Severity	Summary	Stale	Age
947749	Major	<dev-db/redict-7.3.2, <dev-db/redis-{6.2.17,7.2.7,7.4.2}: multiple vulnerabilities CVE-2024-46981 CVE-2024-51741	77	84
950112	Major	<media-libs/openh264-2.6.0: Decoding functions heap overflow GHSA-m99q-5j7x-7m9x	36	40
945164	Major	<app-editors/emacs-{26.3-r22, 27.2-r20, 28.2-r16, 29.4-r2}: Arbitrary code execution CVE-2024-53920	19	127
950192	Major	<app-editors/emacs-{26.3-r22,27.2-r20,28.2-r16,29.4-r2}: Shell injection vulnerability in man.el CVE-2025-1244	19	39
753962	Normal	media-gfx/transfig: Multiple vulnerabilities CVE-2020-21529 CVE-2020-21530 CVE-2020-21531 CVE-2020-21532 CVE-2020-21533 CVE-2020-21534 CVE-2020-21535 CVE-2021-32280 CVE-2021-37529 CVE-2021-37530	435	1604
904337	Normal	<net-misc/ntp-4.2.8_p16: Multiple vulnerabilities CVE-2023-26551 CVE-2023-26552 CVE-2023-26553 CVE-2023-26554 CVE-2023-26555	249	720
908217	Normal	<net-libs/grpc-1.55.1: multiple vulnerabilities CVE-2023-1428 CVE-2023-32731 CVE-2023-32732	181	663
891305	Normal	<media-video/gpac-2.2.1: multiple vulnerabilities CVE-2023-0358 CVE-2023-0760 CVE-2023-0770 CVE-2023-0817 CVE-2023-0818 CVE-2023-0819 CVE-2023-0841 CVE-2023-0866 CVE-2023-1448 CVE-2023-1449 CVE-2023-1452 CVE-2023-1654 CVE-2023-1655 CVE-2023-23143 CVE-2023-23144 CVE-2023-23145 <media-video/gpac-2.2.0: multiple vulnerabilities	168	806
835341	Normal	<media-video/gpac-2.2.0: multiple vulnerabilities CVE-2022-1035 CVE-2022-1172 CVE-2022-1222 CVE-2022-1441 CVE-2022-1795 CVE-2022-2453 CVE-2022-2454 CVE-2022-2549 CVE-2022-26967 CVE-2022-29339 CVE-2022-29340 CVE-2022-29537 CVE-2022-30976 CVE-2022-3178 CVE-2022-3222 CVE-2022-36186 CVE-2022-36190 CVE-2022-36191 CVE-2022-38530 CVE-2022-3957 CVE-2022-4202 CVE-2022-43039 CVE-2022-43040 CVE-2022-43042 CVE-2022-43043 CVE-2022-43044 CVE-2022-43045 CVE-2022-43254 CVE-2022-43255 CVE-2022-45202 CVE-2022-45204 CVE-2022-45283 CVE-2022-45343 CVE-2022-46489 CVE-2022-46490 CVE-2022-47086 CVE-2022-47087 CVE-2022-47088 CVE-2022-47089 CVE-2022-47091 CVE-2022-47092 CVE-2022-47093 CVE-2022-47094 CVE-2022-47095 CVE-2022-47653 CVE-2022-47654 CVE-2022-47656 CVE-2022-47657 CVE-2022-47658 CVE-2022-47659 CVE-2022-47660 CVE-2022-47661 CVE-2022-47662 CVE-2022-47663 <media-video/gpac-2.2.1: multiple vulnerabilities	144	1115
945845	Normal	<dev-lang/python-{3.13.1,3.12.8,3.11.11,3.10.16,3.9.21,3.8.20_p3}, <dev-lang/pypy-3.10.7.3.17_p4: multiple vulnerabilities	68	120

cleanup (145)

Critical: 3 / Major: 17 / Normal: 23 / Minor: 92 / Trivial: 6 / ??: 4
Average staleness: 370 / Average age: 580

Bug	Severity	Summary	Stale	Age
931507	Critical	<dev-libs/glib-2.78.6: Signal subscription vulnerabilities CVE-2024-34397	268	331
930936	Critical	<dev-lang/R-4.4.1: arbitrary code execution in R's deserialization CVE-2024-27322	117	339
914781	Major	<net-print/cups-2.4.7: Buffer overflow when reading Postscript in PPD files CVE-2023-4504 <net-print/cups-2.4.10: Listen symbol link privilege escalation vulnerability <net-print/cups-2.4.10-r1: Missing PPD attribute validation	410	554
922474	Major	<sys-apps/coreutils-9.4-r1: split heap buffer overflow vulnerability CVE-2024-0684 <sys-apps/coreutils-9.5: chmod -R TOCTOU vulnerability	272	440
928391	Major	<dev-python/pillow-10.3.0: buffer overflow in _imagingcms.c CVE-2024-28219	137	367
884799	Major	<net-analyzer/cacti-1.2.26: multiple vulnerabilities CVE-2022-46169 CVE-2023-30534 CVE-2023-31132 CVE-2023-39357 CVE-2023-39358 CVE-2023-39359 CVE-2023-39360 CVE-2023-39361 CVE-2023-39362 CVE-2023-39365 CVE-2023-39510 CVE-2023-39511 CVE-2023-39512 CVE-2023-39513 CVE-2023-39514 CVE-2023-39515 CVE-2023-39516	117	847
937469	Major	<dev-lang/spidermonkey-115.14.0: multiple vulnerabilities <dev-lang/spidermonkey-115.12.0: Multiple vulnerabilities <dev-lang/spidermonkey-115.13.0: Multiple vulnerabilities <dev-lang/spidermonkey-115.16.0: multiple vulnerabilities <dev-lang/spidermonkey-115.15.0: multiple vulnerabilities <dev-lang/spidermonkey-128.8.0: multiple vulnerabilities	116	240
946723	Major	<www-client/chromium-131.0.6778.204, <www-client/google-chrome-131.0.6778.204, www-client/microsoft-edge, www-client/opera: multiple vulnerabilities CVE-2024-12692 CVE-2024-12693 CVE-2024-12694 CVE-2024-12695 <www-client/chromium-132.0.6834.159, <www-client/google-chrome-132.0.6834.159, www-client/microsoft-edge, www-client/opera: Use after free in DevTools. <www-client/chromium-134.0.6998.88, <www-client/google-chrome-134.0.6998.88, www-client/microsoft-edge, www-client/opera: Multiple vulnerabilities	77	104
947700	Major	<www-client/chromium-131.0.6778.264, <www-client/google-chrome-131.0.6778.264, www-client/microsoft-edge, www-client/opera: Type confusion in V8 CVE-2025-0291 <www-client/chromium-132.0.6834.159, <www-client/google-chrome-132.0.6834.159, www-client/microsoft-edge, www-client/opera: Use after free in DevTools. <www-client/chromium-134.0.6998.88, <www-client/google-chrome-134.0.6998.88, www-client/microsoft-edge, www-client/opera: Multiple vulnerabilities	77	85
948135	Major	<www-client/chromium-132.0.6834.83, <www-client/google-chrome-132.0.6834.83, www-client/microsoft-edge, www-client/opera: multiple vulnerabilities CVE-2025-0434 CVE-2025-0435 CVE-2025-0436 CVE-2025-0437 CVE-2025-0438 CVE-2025-0439 CVE-2025-0440 CVE-2025-0441 CVE-2025-0442 CVE-2025-0443 CVE-2025-0446 CVE-2025-0447 CVE-2025-0448 <www-client/chromium-132.0.6834.159, <www-client/google-chrome-132.0.6834.159, www-client/microsoft-edge, www-client/opera: Use after free in DevTools. <www-client/chromium-134.0.6998.88, <www-client/google-chrome-134.0.6998.88, www-client/microsoft-edge, www-client/opera: Multiple vulnerabilities	77	78

glsa? (565)

Critical: 1 / Major: 15 / Normal: 88 / Minor: 445 / Trivial: 3 / ??: 13
Average staleness: 447 / Average age: 717

Bug	Severity	Summary	Stale	Age
942075	Critical	<sys-libs/pam-1.7.0_p20241230: password leakage via speculative ROP chain CVE-2024-10041 <sys-libs/pam-1.6.1: local denial of service vulnerability in `pam_namespace.so` 942075, 922397	4	161
946723	Major	<www-client/chromium-131.0.6778.204, <www-client/google-chrome-131.0.6778.204, www-client/microsoft-edge, www-client/opera: multiple vulnerabilities CVE-2024-12692 CVE-2024-12693 CVE-2024-12694 CVE-2024-12695 <www-client/chromium-121.0.6167.160, <www-client/google-chrome-121.0.6167.160, <www-client/microsoft-edge-121.0.2277.113 <www-client/opera-107.0.5045.21: multiple vulnerabilities <www-client/chromium-130.0.6723.91, <www-client/google-chrome-130.0.6723.91, <www-client/microsoft-edge-130.0.2849.68, <www-client/opera-115.0.5322.77: multiple vulnerabilities <www-client/chromium-132.0.6834.159, <www-client/google-chrome-132.0.6834.159, www-client/microsoft-edge, www-client/opera: Use after free in DevTools. <www-client/chromium-134.0.6998.88, <www-client/google-chrome-134.0.6998.88, www-client/microsoft-edge, www-client/opera: Multiple vulnerabilities 946723, 923966, 942503, 948983, 951155	77	104
947700	Major	<www-client/chromium-131.0.6778.264, <www-client/google-chrome-131.0.6778.264, www-client/microsoft-edge, www-client/opera: Type confusion in V8 CVE-2025-0291 <www-client/chromium-121.0.6167.160, <www-client/google-chrome-121.0.6167.160, <www-client/microsoft-edge-121.0.2277.113 <www-client/opera-107.0.5045.21: multiple vulnerabilities <www-client/chromium-130.0.6723.91, <www-client/google-chrome-130.0.6723.91, <www-client/microsoft-edge-130.0.2849.68, <www-client/opera-115.0.5322.77: multiple vulnerabilities <www-client/chromium-132.0.6834.159, <www-client/google-chrome-132.0.6834.159, www-client/microsoft-edge, www-client/opera: Use after free in DevTools. <www-client/chromium-134.0.6998.88, <www-client/google-chrome-134.0.6998.88, www-client/microsoft-edge, www-client/opera: Multiple vulnerabilities 947700, 923966, 942503, 948983, 951155	77	85
948135	Major	<www-client/chromium-132.0.6834.83, <www-client/google-chrome-132.0.6834.83, www-client/microsoft-edge, www-client/opera: multiple vulnerabilities CVE-2025-0434 CVE-2025-0435 CVE-2025-0436 CVE-2025-0437 CVE-2025-0438 CVE-2025-0439 CVE-2025-0440 CVE-2025-0441 CVE-2025-0442 CVE-2025-0443 CVE-2025-0446 CVE-2025-0447 CVE-2025-0448 <www-client/chromium-121.0.6167.160, <www-client/google-chrome-121.0.6167.160, <www-client/microsoft-edge-121.0.2277.113 <www-client/opera-107.0.5045.21: multiple vulnerabilities <www-client/chromium-130.0.6723.91, <www-client/google-chrome-130.0.6723.91, <www-client/microsoft-edge-130.0.2849.68, <www-client/opera-115.0.5322.77: multiple vulnerabilities <www-client/chromium-132.0.6834.159, <www-client/google-chrome-132.0.6834.159, www-client/microsoft-edge, www-client/opera: Use after free in DevTools. <www-client/chromium-134.0.6998.88, <www-client/google-chrome-134.0.6998.88, www-client/microsoft-edge, www-client/opera: Multiple vulnerabilities 948135, 923966, 942503, 948983, 951155	77	78
937127	Major	<dev-lang/orc-0.4.40: Stack-based buffer overflow when formatting error messages for certain input files. CVE-2024-40897	53	244
948198	Major	<media-libs/gstreamer-1.24.10, <media-libs/gst-plugins-base-1.24.10: Multiple vulnerabilities CVE-2024-44331 CVE-2024-47537 CVE-2024-47538 CVE-2024-47539 CVE-2024-47540 CVE-2024-47541 CVE-2024-47542 CVE-2024-47543 CVE-2024-47544 CVE-2024-47545 CVE-2024-47546 CVE-2024-47596 CVE-2024-47597 CVE-2024-47598 CVE-2024-47599 CVE-2024-47600 CVE-2024-47601 CVE-2024-47602 CVE-2024-47603 CVE-2024-47606 CVE-2024-47607 CVE-2024-47613 CVE-2024-47615 CVE-2024-47774 CVE-2024-47775 CVE-2024-47776 CVE-2024-47777 CVE-2024-47778 CVE-2024-47834 CVE-2024-47835 GHSL-2024-094 GHSL-2024-115 GHSL-2024-116 GHSL-2024-117 GHSL-2024-118 GHSL-2024-166 GHSL-2024-195 GHSL-2024-197 GHSL-2024-228 GHSL-2024-235 GHSL-2024-236 GHSL-2024-238 GHSL-2024-242 GHSL-2024-243 GHSL-2024-244 GHSL-2024-245 GHSL-2024-246 GHSL-2024-247 GHSL-2024-248 GHSL-2024-249 GHSL-2024-250 GHSL-2024-251 GHSL-2024-258 GHSL-2024-259 GHSL-2024-260 GHSL-2024-261 GHSL-2024-262 GHSL-2024-263 GHSL-2024-280 GStreamer-SA-2024-0003 GStreamer-SA-2024-0004	53	77
948592	Major	<sys-libs/glibc-2.40-r8: Buffer overflow in the GNU C Library's assert() CVE-2025-0395	25	71
951286	Major	<media-libs/freetype-2.13.1: Remote code execution CVE-2025-27363	21	21
945164	Major	<app-editors/emacs-{26.3-r22, 27.2-r20, 28.2-r16, 29.4-r2}: Arbitrary code execution CVE-2024-53920	19	127
950192	Major	<app-editors/emacs-{26.3-r22,27.2-r20,28.2-r16,29.4-r2}: Shell injection vulnerability in man.el CVE-2025-1244	19	39

glsa (5)

Normal: 5
Average staleness: 69 / Average age: 416

Bug	Severity	Summary	Stale	Age
916378	Normal	<app-misc/tracker-miners-3.5.3: Sandbox weakness CVE-2023-5557	69	523
916513	Normal	<net-libs/nodejs-{18.18.2,20.8.1}: multiple vulnerabilities CVE-2023-38552 CVE-2023-39331 CVE-2023-39332 CVE-2023-39333 CVE-2023-45143	69	522
924704	Normal	<net-libs/nodejs-{18.19.1,20.11.0}: Multiple vulnerabilities CVE-2023-46809 CVE-2024-21890 CVE-2024-21891 CVE-2024-21892 CVE-2024-21896 CVE-2024-22017 CVE-2024-22019 CVE-2024-22025	69	412
928532	Normal	<net-libs/nodejs-{18.20.1,20.12.1}: multiple vulnerabilities CVE-2024-27982 CVE-2024-27983	69	365
936204	Normal	<net-libs/nodejs-{18.20.4, 20.15.1,22.4.1}: Multiple Vulnerabilities CVE-2024-22018 CVE-2024-22020 CVE-2024-36137 CVE-2024-37372	69	260